0.001 Low
EPSS
Percentile
24.9%
Knowage Suite 7.3 is vulnerable to Stored Cross-Site Scripting (XSS). An attacker can inject arbitrary web script in β/knowage/restful-services/documentnotes/saveNoteβ via the βnotaβ parameter.
github.com/piuppi/Proof-of-Concepts/blob/main/Engineering/Stored-XSS-KnowageSuite7-3-notes.md